CVE-2018-4209
published 2019-01-11CVE-2018-4209: In iOS before 11.3, Safari before 11.1, iCloud for Windows before 7.4, tvOS before 11.3, watchOS before 4.3, iTunes before 12.7.4 for Windows, unexpected…
high8.8CVSS 3.0
AVNACLPRNUIRSUCHIHAH
In iOS before 11.3, Safari before 11.1, iCloud for Windows before 7.4, tvOS before 11.3, watchOS before 4.3, iTunes before 12.7.4 for Windows, unexpected interaction causes an ASSERT failure. This issue was addressed with improved checks.
Affected
15 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | icloud | < 7.4 | 7.4 |
| apple | icloud_for_windows | — | — |
| apple | ios | — | — |
| apple | iphone_os | < 11.3 | 11.3 |
| apple | itunes | < 12.7.4 | 12.7.4 |
| apple | itunes_12.7.4_for_windows | — | — |
| apple | safari | < 11.1 | 11.1 |
| apple | safari | — | — |
| apple | tvos | < 11.3 | 11.3 |
| apple | tvos | — | — |
| apple | watchos | < 4.3 | 4.3 |
| apple | watchos | — | — |
| canonical | ubuntu_linux | — | — |
| debian | webkit2gtk | < webkit2gtk 2.22.0-2 (bookworm) | webkit2gtk 2.22.0-2 (bookworm) |
| webkit | webkitgtk | < 2.22.0 | 2.22.0 |
CVSS provenance
nvdv3.08.8HIGHCVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
osv8.8HIGH